Hi everyone, we have configured an CRM 365 on-premise (8.2.0001.0176) along with Internet Facing Deployment, however when our users try to access the CRM through the Windows 10 application, they are prompted for Windows Authentication first rather than being redirected to ADFS immediately. We did some Fiddler debugging and figured that the issue is when the application requests /XRMServices/2011/Organization.svc/web?SdkClientVersion=7.0.0000 it receives multiple WWW-Authenticate headers (Negotiate, NTLM and Bearer which contains the address to the ADFS and the resource). My question is - why does the server return NTLM or Negotiate? I am accessing the CRM from extranet so no Windows Authentication prompt should happen. Are there any solutions to prevent this? It is quite annoying for the users.
↧